How are you assessing the security posture of third-party APIs the business relies on? What criteria do you use currently?

Threat & Vulnerability Management Third Party Risk Management (TPRM)

2.2k views2 Comments

Sort by:

Senior Director Of Technology in Softwarea year ago

We do internal vulnerability testing of 3rd party APIs like we do for ours.

Director of IT in IT Servicesa year ago

We evaluate third-party API security through comprehensive risk assessments, focusing on authentication protocols, data encryption, and vendor compliance.

Content you might like

Do you have a person at your company specifically focused on payments (e.g., VP of Payments)?

Yes65%

No35%

How much time do you spend evaluating vendors each week? E.g. Reading up, having phone calls and demos etc.

<1hr23%

1-3hrs60%

3-5hrs12%

>5hrs2%

View Results

How confident are you in letting AI agents take autonomous actions after a SIEM or XDR alert?
Are you using them today? If not, what’s holding you back?

Considering the current economic climate and organizational priorities, how likely is it that your organization will increase, decrease, or maintain its cybersecurity budget this year?

How are global companies typically structured when they have a global CISO and additional CISOs responsible for different regions? In these organizations, how are policies, approval processes, and compliance with local regulations managed across different regions?

How are you assessing the security posture of third-party APIs the business relies on? What criteria do you use currently?

Sort by:

Content you might like

Do you have a person at your company specifically focused on payments (e.g., VP of Payments)?

How much time do you spend evaluating vendors each week? E.g. Reading up, having phone calls and demos etc.

How confident are you in letting AI agents take autonomous actions after a SIEM or XDR alert?
Are you using them today? If not, what’s holding you back?

Considering the current economic climate and organizational priorities, how likely is it that your organization will increase, decrease, or maintain its cybersecurity budget this year?

How are global companies typically structured when they have a global CISO and additional CISOs responsible for different regions? In these organizations, how are policies, approval processes, and compliance with local regulations managed across different regions?

What sets us apart?

Take Your Insights On-the-Go

How are you assessing the security posture of third-party APIs the business relies on? What criteria do you use currently?

Sort by:

Content you might like

Do you have a person at your company specifically focused on payments (e.g., VP of Payments)?

How much time do you spend evaluating vendors each week? E.g. Reading up, having phone calls and demos etc.

How confident are you in letting AI agents take autonomous actions after a SIEM or XDR alert?Are you using them today? If not, what’s holding you back?

Considering the current economic climate and organizational priorities, how likely is it that your organization will increase, decrease, or maintain its cybersecurity budget this year?

How are global companies typically structured when they have a global CISO and additional CISOs responsible for different regions? In these organizations, how are policies, approval processes, and compliance with local regulations managed across different regions?

What sets us apart?

Take Your Insights On-the-Go

How confident are you in letting AI agents take autonomous actions after a SIEM or XDR alert?
Are you using them today? If not, what’s holding you back?